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METHODS AND SYSTEMS FOR PROMOTING SECURITY IN A COMPUTER 
SYSTEM EMPLOYING ATTACHED STORAGE DEVICES 

BACKGROUND OF THE INVENTION 

5 Field of the Invention 

The present invention generally relates to methods and systems for securing 
computer systems. The present invention more particularly relates to methods and 
devices for securing information in a computer system wherein the computer system 
may be connected to a networked environment. 

10 Description of the Related Art 

With the advent and widespread deployment of the Internet, conventional 
computer security systems have been found to be deficient. A disadvantage of the 
Internet is that it permits many ways to infiltrate conventional computer system 
perimeter defense systems. Damaging virus programs, for example, can be injected 

15 through firewalls and into a computer system. This can compromise data and 
computer programs, and therefore derivative capabilities such as digital rights 
management. 

This deficiency in computer system perimeter defenses creates the need to 
position security defense systems in the local computer system. A conventional 
20 example of such localized computer system security is virus detection software. 

Virus detection software, however, can be susceptible to many exploits including, but 
not limited to, "spoofing" or "wrappering" strategies. Consequently, virus detection 
software may be made to appear operational when it is not properly operating. 
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Perhaps the greatest fundamental problem with conventional computer 
security systems is that their operation is common to the environment of the 
operating system environment. Furthermore, the operating system environment for 
many computer systems is also common to the Internet environment, for example, or 

5 another network communications medium. Because of this common environment, 
many means of attack on a computer system are available merely by moving 
computer code from the Internet to the computer operating system. 

Some conventional methods of computer protection may involve special 
purpose security hardware or firmware installed in the BIOS of a computer system. 

10 These methods can establish secondary lines of defense internal to operation of a 
computer system but external to the complicated and error-prone operating system 
environment. However, these methods often fail to recognize that a better line of 
defense could be realized with non-writeable firmware in the attached storage 
devices that provide the bulk of data and code storage for computer systems. 

15 Other conventional computer security systems may include a security device 

connected to an SCSI bus that protects storage devices on the bus. This type of 
security system recognizes that the storage device is more secure while not 
operating in an environment common to the operating system. However, the SCSI 
bus of this system exposes all devices on the bus, including the storage devices, to 

20 access and therefore requires intimate operating systems involvement. It would be 
an improvement over this technique to put the security measures in the attached 
storage firmware and data storage. The same solution could also then be applied in 
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SCSI environments and other environments such as ATA storage device 
environments. 

Still other computer security systems recognize the benefit of guarding the 
storage device at the controller level but are based on shared private keys. Shared 

5 private keys are well-known to provide less security than securing and concealing 
elements of public-private key encryption, because authentication keys are shared 
and not private to a single device. This type of system is also directed to modification 
of the file management system of the computer operating system and therefore 
suffers the same problem of operating system dependence illustrated above for SCSI 

10 security. An improved computer security system could leave the operating system 
file management intact while maintaining separate control over security through a 
special security interface to the attached storage device. 

In another type of computer security system, the security perimeter consists of 
self-contained software that exports only a simple storage interface for external 

15 access and verifies the integrity of each command before processing the command. 
By contrast, most file servers and client machines execute a multitude of services 
that are susceptible to attack. Since this self-securing storage device is a single- 
function device, the task of making it secure is made easier. However, the objective 
of this system ss to provide for automated recovery to a known good state relying on 

20 the previous secure storage mechanisms. This type of system also requires 
operating systems modification. It incorporates complexity, and therefore 
vulnerability, approaching that of an operating system, and permits opportunities for 
the introduction of Trojan horses, for example, into the system. Furthermore, this 
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type of system does not recognize the improved security afforded by using the 
storage device for hiding and securing public-private key operations. 

Security afforded to a computer system by the ATA Host Protected Area 
security protocol can be provided by a method used in connection with readying a 

5 storage device during the boot phase of a computer system. In this method, the 
storage device can be declared to the operating system to have less storage space 
than the storage device actually has ready for use by the operating system. Special 
BIOS firmware or other special code can have exclusive access to the undeclared 
portion of storage space. As an additional security measure, the ATA Host Protected 

10 Area can require passcode access to this additional amount of storage space. The 
ATA Host Protected Area was originally designed to provide security assurance in 
the form of enhanced operating system and application crash recovery efficiencies. 
A known good version of the system or application software could be cached in a 
location outside the capability of the operating system to address. In practice, this 

15 restricts access to a portion of the storage device to a computer program running 
either in the main device firmware or in the operating system environment. 

A problem with the ATA Host Protected Area protocol is that it is still possible 
to intercept communications with the storage device that contain critical information. 
The hidden ATA Host Protected Are« partition of the storage device can be revealed, 

20 for example, by putting that same disk drive into another computer that does not 
reserve the Host Protected space. The passcode, if used, is not retained across 
power cycles. The ATA Host Protected Area, in practice, is an acceptable place to 
protect local backup code and data from virus-like infections but is typically not the 
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best place to conceal data. Furthermore, the only authentication required by ATA 
Host Protected Area is a "first come first served, winner take all" type of device 
authentication. Public-private key techniques applied to sections of secure data 
storage would provide an improvement in this type of security. 

5 Therefore, computer security methods and systems are needed that address 

the aforementioned shortcomings in the art. Method and system approaches are 
needed in the storage device environment that provide resistance to unauthorized 
access and use of computer programs and data. Methods and systems are needed 
that permit sections of the storage device to store data that are not available to the 

10 file system or operating system in a computer system for reading or writing 

operations, except under controlled and cryptographically-guarded conditions. Such 
controlled conditions should include device authentication and user authentication of 
secured datasets performed externally to the operating system of the computer 
system. Methods and systems are also needed that provide firmware and storage 

15 devices with controls on access, storage and retrieval of data. These controls should 
not be able to be written by any process available to the computer system and should 
be localized in the attached storage device. 

SUMMARY OF THE INVENTION 
20 The present methods and systems use simple but effective means for 

promoting security in a computer system. In one embodiment of these methods and 
systems, a simple file system is concealed in the computer system and is managed 
with a processor and simple non-writeable code operating on a storage device. This 
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simplicity of design provides the present computer security methods and systems 
with means for securing data on the storage device. 

In one method embodiment, a computer system is provided with an operating 
system in operative association with at least one storage device, wherein the storage 
5 device includes firmware and a processor for processing data stored on the storage 
device. The method includes creating at least one security partition in, and restricting 
access to, at least a portion of the storage device by the operating system. The 
method also includes creating at least one security partition in the storage device. 
The method also includes providing at least one authority record and data associated 
10 with the authority record in the storage device. 

System and computer-readable medium embodiments structured in 
accordance with the method embodiments discussed herein are also provided. 



BRIEF DESCRIPTION OF THE DRAWINGS 
15 Figure 1 is a diagram showing a system configured in accordance with 

methods and systems for promoting computer security; 

Figure 2 is a schematic showing details of the storage device of Figure 1; 
Figure 3 is a schematic illustrating the interaction between a storage device 
and an operating system file system of a computer system in accordance with 
20 methods and systems for promoting computer security; 

Figure 4 is a schematic showing details of the authority records and security 
partition data shown in Figure 3; 
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Figure 5 is a tabulation showing portions of an authority record provided in 
accordance with the present computer security methods and systems; 

Figure 6 is a tabulation showing a partition header provided in accordance with 
the present computer security methods and systems; 
5 Figure 7 is a tabulation showing basic storage device procedures provided in 

accordance with the present computer security methods and systems; and, 

Figure 8 is a tabulation of error codes that can be generated in accordance 
with the present computer security methods and systems. 



10 DETAILED DESCRIPTION 

Overview 

As used herein, "computer systems" include, but are not limited to, desktop 
computer systems, laptop computer systems, networked computer systems, wireless 
systems such as cellular phones and PDA's, digital cameras including self-contained 

15 web-cams, and/or any reasonable combination of these systems and devices. 

As used herein, the terms "storage device" and "disk drive" or "disk" are 
interchangeable, except where otherwise noted, and include any device for storage 
of data in a computer system in accordance with the computer security methods and 
systems discussed herein. Notwithstanding the use of the term "disk" the storage 

20 device need not necessarily incorporate a physical "disk" but preferably incorporates 
a place for storage managed by a controller with firmware. 
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It can be appreciated that the term "partition" is used in certain embodiments 
herein to mean a contiguous grouping of 512 byte blocks as allocated by the low- 
level formatting of the storage device. 

Special security partitions and the structures and processes that support these 

5 security partitions are included in the present computer security methods and 
systems. A primary objective of the present methods and systems is to provide a 
computer security system that is substantially not dependent on an operating system. 

Referring now to Figure 1 , the architecture of a network-attached device 
consistent with the methods and systems discussed hereinafter is shown. The 

10 network 2, which can be the Internet or another network communications medium, is 
connected by a wireless or wired (not shown) connection 4 to the computer system 6 
of a user. Inside of the computer system 6 is an operating system 10, which relies at 
least in part on software and data obtained from a storage device 12. 

Referring now to Figures 1 and 2, a more detailed schematic of the storage 

15 device 12 is shown in Figure 1 . The storage device 12 contains firmware 14 that 
reads and writes data from a data storage portion 16 of the storage device 12. It can 
be appreciated that at least a portion of the storage device firmware 14 can be re- 
written by software executed in the operating system 10. This portion of the storage 
device firmware 14 that can be written can be considered writeable firmware ("WF"). 

20 In contrast, at least a portion of the storage device firmware 14 is written by using 
one or more of a plurality of conventional hardware methods that resist this firmware 
from being written by the operating system 10. This portion of the storage device 
firmware 14 that cannot be written can be considered non-writeable firmware 
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("NWF"). In one embodiment, the storage device 12 can also include a separate 
central processing unit 18 ("CPU") for directing the firmware 14 to access and 
otherwise manipulate data in the data storage portion 16 of the storage device 12. It 
can be made a requirement that no data can be transported to or from the data 
5 storage portion 16 of the storage device 12, except in connection with execution of 
the NWF orWF. 

For purposes of illustration, some examples of NWF and WF firmware can be 
derived in connection with the ATA and SCSI disk controller protocols. At least 
portions of these protocols relate to connectivity between the operating system and 

10 the data storage components of a computer system. The ATA protocol, for example, 
permits customization of commands, such as controller commands, by a user. In one 
embodiment, the present computer security methods and systems offer an addition to 
the ATA/ATAPI-5 ANSI specification, NCITS 340-2000. However, it can be 
appreciated that parallel, analogous additions can be made by the methods and 

15 systems addressed herein to the SCSI specification and other suitable disk controller 
specifications that allow, for example, vendor-specific or standards-driven extensions. 
It can also be understood that the methods and systems discussed herein can form 
the basis for a component part of a new disk controller specification. 

Data storage, as applied herein, can be provided in connection with a 

20 conventional disk controller protocol such as ATA or SCSI. One type of security 
protocol available to ATA, in particular, is known to those skilled in the art as ATA 
Host Protected Area. Mapped-out storage, as applied herein, is storage space that is 
mapped-out by tables in the NWF and WF to indicate bad sectors. It is understood 
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that other data can be mapped out of the writeable storage by the disk controller for 
the storage device. 

Referring now to Figure 3, the present computer security methods and 
systems can augment existing ATA and SCSI protocols, for example, with simple and 

5 effective enhanced security protocols. The methods and systems include a storage 
device 30 having security partition ("SP") data 32 and at least one authority record, 
such as authority record 34, associated with the security partition data 32. These 
security partition data 34 and authority records 34, 36, 38 are contained in a security 
partition of the storage device 30. The present methods and systems provide a 

10 relatively simple file system located on the low-level formatting of the storage device 
30. The growth of data added to the storage device 30 proceeds from top to bottom, 
as shown in Figure 3, so that a query of the storage device 30 contents can readily 
reveal how much data storage space remains for use. 

Operations involving the authority records 34, 36, 38 are managed by the 

15 firmware of the storage device 30. In one embodiment, all authority records 34, 36, 
38 can be governed by a single master authority record 40. As shown, an operating 
system ("OS") file system 42 is not permitted to access the security partition data 32 
contained in the storage device 30. This independence of the security partition data 
32 from the OS file system 42 provides an important benefit of the present security 

20 methods and systems: to create a location on a computer system where information 
such as a secret can be effectively concealed. 

Referring now to Figure 4, a schematic of an authority record 52 is presented 
in accordance with the authority records 34, 36, 38 of Figure 3. The authority record 
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52 can include data, computer programs, and other like information and functionality 
in association with the SP data 54 corresponding to the authority record 52. The 
contents of the authority record 52 and the SP data 54 (elements 56 through 84) are 
related to information for which concealment is desired and/or functionality that 

5 promotes secure data processing in a computer system. Types of information that 
can be stored in SP data 54 and types of secure processing functions performed by 
the authority record 52 in connection with the SP data 54, as indicated in elements 
56 through 84, are presented below as examples. 

It can be seen that there are many advantages to a closed, non-expandable, 

10 storage and authority system as described herein. The storage device can define, for 
certain data on the disk, a structure for authorization and authentication that can be 
readily inspected and audited. If authorization and authentication functions are not 
provided in a closed system, then a computer system is generally more vulnerable to 
attack and infiltration. It can be appreciated that 63 user-definable authority records 

15 and one master record are likely to suffice for most practical applications of the 
present computer security methods and systems. Because these methods and 
systems are storage device specific lines of security defense, a single authority can 
translate to a group authority in the operating system environment or an entire 
domain authority. Since the authorities can be created and deleted by the user as 

20 needed, with the understanding that a master authority record can govern these user 
modifications, the present methods and systems provide an appropriate line of 
defense for the computer system. 
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Examples 

The following examples are intended to illustrate potential implementations of 
the present computer security method and system embodiments. It can be 
appreciated that such examples are intended primarily for purposes of illustration. 

5 No particular aspect or aspects of the method and system embodiments described 
herein are intended to limit the scope of the present invention. For example, it can be 
appreciated that a particular choice of nomenclature for security partition commands 
executed by the present computer security methods and systems are for illustration 
purposes and are not intended to limit the scope of the present invention. 

10 Figures 5 through 8 outline illustrations of the data content and structure, basic 

procedures, and error codes for the present computer security methods and systems. 

Figure 5 shows the fields of a single authority record followed by the data 
associated with the authority record. An authority record defines one authority (e.g., 
a user, group, domain, or other agent) and a data set for which the authority record 

15 administers access protections. 

Figure 6 shows the header for the partition containing the master authority 
record and its data, which comprises all other authority records for the storage 
device. This header provides information to the computer system for efficient use of 
the security partition, authority records and their associated SP data. 

20 Figure 7 shows the basic storage device procedures associated with the 

present computer security methods and systems. These basic procedures include 
methods for setting up new authority records, deleting data and/or modifying previous 
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authority records. Also shown are procedures for using the security features built into 
one or more user applications. 

Figure 8 shows sample error codes that may result from application of the 
various procedures described in Figure 7. 

5 As applied to the present computer security methods and systems, reading 

and writing data to a secured data partition can use conventional read/write 
mechanisms and protocols. In one aspect, if a read or write of a security partition is 
attempted, the security partition can be opened using a security partition open call, 
such as the SPOpen command. Once open, the security partition remains open until 

10 closed (such as by use of the SPCIose command) or until expiration of a 

predetermined time interval. An SPOpen command can limit read and write access 
in many ways that are important to security functions needed for the storage device. 
In another embodiment, specialized SP, fixed-length and record-oriented, read and 
write operations are permitted that do not leave open the windows of opportunity that 

15 the global SPOpen command can permit. 

In some embodiments, the SPOpen and SPCIose commands are not available 
due to security or efficiency considerations and read and write operations are 
performed through the available SPProtRead and SPProtWrite commands. Use of 
the SPProtRead and SPProtWrite commands can perform an internal, hidden, 

20 SPOpen functionally equivalent action without exposing the secure data to user 
interaction. 

In certain embodiments, the present computer security methods and systems 
can use, for example, ANSI X.509 certificates that can employ trap-door 
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cryptographic algorithms such as the well-known RSA algorithm for authentication. 
Each authority record can contain one public-private key pair for authenticating data 
that originates from the security partition of interest. A second public-private key pair 
is provided to ensure that data can only be sent to the particular security partition and 

5 no other location for storage. These key pairs are associated with X.509 Cert-ln (i.e., 
the data are only transmitted to the desired partition) and X.509 Cert-Out (the data 
are signed and thereby authenticated to come only from the desired partition). A 
symmetric key can be used in a way substantially similar to SSL and other 
equivalently secure streaming protocols to encrypt the data. In this embodiment, the 

10 public-private keys are used primarily for the hashes associated with the certificates, 
although a private key can decode a passcode directed to an authority. 

The present methods and systems can require that the above-mentioned 
cryptographic operations are embedded in the firmware or physical storage of the 
storage device. The cryptographic code is authenticated with a root assurance in the 

15 NWF of the device. In this manner, access to reading or writing SP-protected data 
cannot be susceptible to attack except by physically modifying the storage device. 
The SP system also provides for encrypting data in the data partition. The encryption 
utilizes the symmetric key. If encryption is turned off, then the data in the storage 
device are plain text even though the symmetric encryption may not have been 

20 employed in transmitting the data to and from its storage location. If encryption is 
turned on, then the data in the storage device are encrypted even though the 
symmetric encryption may not have been employed in transmitting the data to and 
from its storage location. 
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If the SP data are encrypted and the authority source is external, a method 
and system can be provided to encrypt data on the storage device so that only an 
external agent can decrypt the data. The SP DataEncrypt command encrypts the SP 
data so that a key can be acquired and applied from an external source. 

5 In this embodiment, there is no accessible method for decrypting the data from 

the storage device based on information available in the storage device. This 
method and system involves securely transmitting the public key and symmetric key. 
The private key is provided to decrypt the symmetric key when the symmetric key is 
needed for use in encrypting or decrypting data. This public key / symmetric key / 

10 private key arrangement is a conventional method for providing file encryption. The 
present computer security methods and systems improve this conventional method 
by providing for security methods and systems contained only in the storage device 
and not as part of an operating system or file system. 

Another feature of the authority record that controls the reading and writing of 

15 data in a security partition is that certain fields of the authority record can be hidden. 
"Hidden" typically means that the values in these fields cannot be read by any 
external process, i.e., the values cannot be read either by a call to the firmware or by 
direct examination of the contents of the storage device. There are a plurality of 
known hardware techniques by which storage can be protected: for example, 

20 mapping out the address space of such storage except to the NWF. Another 

technique that can be applied in connection with the passcode field of the authority 
record is to store only a hash of code. This technique is possible because there is no 
requirement to read a plain text passcode. In addition, another technique is to hide a 
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symmetric key by encrypting the key with an authority's public key, such that only the 
hidden private key can decode it. 

In practice of the present computer security methods and systems, a 
distinction can be made between an external authority source and an internal 

5 authority source. If a security partition is an internal authority source, then the public- 
private key pairs and symmetric keys are generated internally by the NWF and WF of 
the storage device. If a security partition is an external authority source, then the 
public-private key pairs and the symmetric key can be transmitted by a secure 
method of transmission (as defined by the SPCSet command, for example) to the 

10 storage device. This means that while certain data, such as a private key, can be 
written (such as by the SPCSet or by the internal key generator), the data are not 
read by any external process, because they are defined as hidden. It is important 
that the same "Write but Not Read" capability can be afforded data in any security 
partition that is a "Write but Not (external) Read" partition. Therefore, a user 

15 application external to the storage device can employ the storage device as a reliable 
place to conceal information and to perform cryptographic operations with a relatively 
high degree of security and secrecy. 

One embodiment of the present computer security methods and systems 
provides foi declaring SP data to be write-once. One illustrative use of this 

20 embodiment is in PKI (public key infrastructure), wherein a problem exists in 

validating public keys for a particular authority. The security partition of the present 
methods and systems can verify the source of the public key dynamically. This 
overcomes one of the fundamental problems in PKI known as key revocation. It is 
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possible with the present methods and systems to have a secure means of 
dynamically keeping public keys current with a relatively high level of assurance. 
Another application of the write-once embodiment is applied to lock software to a 
system or disk and create logs that cannot be repudiated or accessed without 

5 authorization. In this embodiment, the storage device can be employed to read the 
log which may contain credit card purchase information, for example. 

The present computer security embodiments typically use a fixed amount of 
space associated with each authority record and associated data set. In addition, 
one master authority record can contain the authority records for all other security 

10 partitions. For example, each authority record can use 2633 bytes of a six block 
(3072 byte) region, and there can be 64 possible authority records, for a total of 
196,608 bytes in the security partition which contains the authority records for all 
security partitions. In this illustrative system, there can only be 63 user-definable 
security partitions. No external authority is permitted access in this embodiment 

15 except as defined by the external source of private/public/symmetric keys. This 
means that only an authority record defined on the storage device can be an 
authority permitted to read or write any other authority record and/or data set. It can 
be appreciated that an allowance is made in the publicly-readable, and typically 
factory-set, authority record header to expand or reduce this closed system of 

20 authority to more than or less than 64 total authority records. 

In embodiments of the present computer security systems that maintain a 
finite number of authority records with a fixed-space utilization for the master 
authority record, the performance penalty associated with having an SP-enabled 
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storage device can be regulated. In general, any read or write operation on the 
storage device checks to determine whether low-level storage addresses (e.g, 
cylinder, head, sector, block and the like) are protected by a security partition. 

In another embodiment, the security partition region is modeled like an ATA 
Host Protected Area region. The partition containing the master authority record and 
the other authority records has a known, fixed size and uses storage hidden even 
from an ATA Host Protected Area call. Any partitions below the master authority 
record can use the top portion of the ATA Host Protected Area space. Since write 
and read operations in the ATA Host Protected Area space are typically rare, it can 
be effective to add a function to check for SP-protected regions. 

In another aspect of the present methods and systems, an SPAuthHeader call 
returns a list of protected disk address regions. By designating a fixed region of the 
storage device to be the area where SP data resides, the function of checking for 
permitted write operations can be performed. The SPAuthHeader call returns values 
synthesized and stored in the extended authority partition header. It is useful for this 
call to report contiguous regions of the storage device that are SP-protected. In this 
manner, user software can be warned not to attempt to address those regions 
without appropriate SPOpen calls. An SPAuthHeader call may not report disk 
addresses to which a user does not have access. 

It can be appreciated that a user-defined SP data partition can consume the 
entire storage capacity of the storage device if such consumption is permitted by the 
NWF and WF. This is one reason for restricting authority to read and write the 
master authority record to only predetermined users. The present system can 
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provide authentication of these predetermined users and minimize the number of 
users who have administrator-level control over the authority records. 

An important function of the SPAuthHeader call is to return the public key for 
communicating to the master authority record. This function is important because the 

5 master authority record requires public-key encryption for the passcode needed to 
access the master authority record. A factory distributed storage device can have a 
passcode structured so that software attempting to initialize the master authority 
record must know the passcode. The passcode is also structured so that it cannot be 
"sniffed" or otherwise inspected in transit because of the passcode's encryption with 

10 the master authority record's public key. 

It is known that publishing a public key for encrypting passcodes can make 
use of the public key susceptible to a replay attack. To resist such attacks, one 
embodiment of the present security methods and systems includes SPNonce (which 
contains a "nonce") and SPAuthNonce fields in the authority record and the authority 

15 header. The nonce can be a random number up to 256 bytes in length that is 
intended for one-time use. In one embodiment, the nonce is encrypted with the 
public key as a portion of the passcode. This ensures that the sender of the 
passcode knows the passcode. The nonce is made a part of the authority record so 
that the nonce can be passed to the NWF and WF. This permits the nonce to be 

20 used to gain authority to remote storage devices through passcodes that are stored 
and hidden in user authority records. 

For generation of keys and nonces, a random number generator can be 
provided in the NWF and WF. Certain storage devices, such as hard disks, afford 
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opportunities for measuring random mechanical or electronic error that can be 
cultivated as a source for random numbers. The present computer security methods 
and systems can use this continuous random number, for example, with secure 
storage-to-storage transmission to create one-time pads. One-time pads are well- 

5 known perfect encryption-decryption techniques. 

It can be appreciated that since an authority record can have SP data that 
have start times, end times, and/or instructions to remove or transfer SP data at a 
predetermined time, then a reliable source for clock time is needed. Benefit can be 
obtained by having a clock inside the storage device that can be synchronized to an 

10 external clock through a secure authorized transmission. This necessitates an 

additional call that has an authority record set aside or that needs use of the master 
authority record. By reducing the amount of time the nonce is considered to be valid, 
then the error in the transmitted clock time can be bounded. 

A common use of a secure partition is to store the public keys of other secure 

15 partitions on other devices. In this embodiment, a secure network of storage devices 
can be achieved, because the passcodes that permit access to other authority 
records on other devices are themselves encrypted inside the storage devices. For 
example, it is possible to create one or more master registries that can securely 
manage the security partitions on a number of other storage devices. 

20 It can be appreciated that the present computer security embodiments must 

deal with call authentication to secure code and data in the operating system 
environment. Call authentication has two general cases. In one case, it is necessary 
to authenticate that a computer program, for example, that is called is the correct 
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computer program. In the other case, it is necessary to authenticate that the program 
or routine that calls the computer program is the correct program or routine. 

Call authentication provides the basis for secure communications between 
code running in the operating system and the storage device authority. The general 
case for the operating system is to have a plurality of loader/linkers. These are 
operating system programs that read code from storage; assign symbolic, virtual and 
physical addresses; initialize values; load the code into execution memory; and can 
also initiate code execution. 

A conventional practice is to put code authentication in the loader/linker. 
However, once legitimate code is authenticated, loaded and linked, intrusive code 
can modify the legitimate code during execution. Introduction of intrusive code can 
be readily performed if the code that is linked and loaded can read data from the 
storage device and interpret that data as a program code. Many programs have the 
capacity to introduce intrusive code accidentally in this manner. However, even 
without this capacity, there are schemes such as a conventional buffer-overflow 
exploit that can replace code known to be authentic with intrusive code. 

Code authentication is nevertheless useful at the loader/linker level. If all 
reads of data that are to function as code are authenticated reads, then much of the 
benefit of code authentication can be realized. If buffer-overflow and similar exploits 
are eliminated through good programming practice, then code authentication can be 
an effective technique. It is well known, however, that code running in an open 
operating system environment often fails to conform to good security practices. 
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The present computer security methods and systems can provide a 
component for code authentication. In one embodiment, one or more authority 
records can be employed by one or more linker/loaders to store public keys as data 
and check the code being loaded for authenticity. The loader/linker can therefore be 

5 certain that the public key, the hash value, and the code are authentic. The 
loader/linker code can be stored in non-writeable space in one authority record to 
ensure that its essential code is unaffected. 

Code authentication can handle the call authentication problem only if all calls 
are made to properly authenticated code. There remains a possibility that intrusive 

10 data can be introduced that cause a call to an incorrect code segment. In an 
operating system where communication is defined through message passing or 
similar object-oriented methods, calling is done by name or handle. The authority 
record can be employed in a "write-once-no-delete" mode to record authenticated 
calls between code segments. If all code segments are authenticated, then they are 

15 coded typically to proper bound-checking standards. In this case, the call-path is 
authenticated and is unlikely to have a security breach. 

Another method for providing call authentication involves the well-known 
principle of wrappering code segments. In this method, a code segment is executed 
within the memory space of another code segment that has been introduced either 

20 by the code compiler or the loader/linker. An example of this is the debugging 
function in a conventional compiler. Another example is in interpreted byte code 
systems. Assuming that the wrappering code is available directly from protected disk 
authority space, then it can provide for fully call-authenticated action by a code 
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module. The method confirms that calls external to the code are calls to the 
symbolic, virtual, or physical addresses originally authenticated. For example, if a 
code set should not open a port to the Internet, then the wrapper provides an alarm if 
such a port opening was attempted. The data that records the calls permitted within 
the wrapper are preferably stored in a secure, non-writeable authority record. 

The general solution to call authentication within the present computer security 
methods and systems employs the storage device to store authentication data; to 
perform the authentication computation; and to store special code segments from 
which roots of trust in the operating system environment can be established. In 
general, key linker/loaders and code interpreters are sufficient to establish trust on 
particular code operating within the operating system environment. This is an 
improvement over other approaches that propose radically altering the file system or 
securing the entire operating system environment when that environment cannot 
usually be completely secured. The present computer security embodiments provide 
key tools that can be employed to secure code execution within the operating system 
environment and therefore provide a scaleable solution to the call authentication 
problem. 

Benefits / Advantages 

The methods and systems discussed herein provide significant improvements 
and advantages for promoting computer system security that include the following 
benefits: 

• Internal security is provided for a computer system that uses a local or remote 
storage device for program and data. The storage device can be one or more 
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storage devices that can reside in a single computer system. The computer 
systems can be connected by a bus or a network. 

• Protection of a computer system from network-originated attacks, particularly 
where the computer system relies on storage devices. 

5 • Protection of data and computer programs against unauthorized use and 
copying within a computer device and/or system. 

• Permit a storage device to secure and conceal private keys and also sign and 
check messages in a hidden but authenticated manner. 

• Upgrade of existing computer security systems in a local area or wide area 
10 enterprise that depends on electronic or electro-optic data and computer 

programs. 

• Transmission of data and computer programs to a storage device through 
broadband and/or narrowband unswitched and/or switched networks, so that 
an indication of the secure and accurate function of the data and/or computer 

15 programs in the computer system can be provided. 

• Transmitting, storing and managing public keys for a public key infrastructure; 
and for transmitting, storing, and managing private keys for cryptographic use. 

• Managing the integrity and rights of multimedia audio and video content 
across many storage devices both local area and wide area. 

20 • Providing storage security while not hampering storage device performance in 
normal use. 

• Improving use of the ANSI ATA-4 and ATA-5 Host Protected Area. 
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• Providing assurance to the operation and integrity of an operating system 
across a plurality of networked computer systems; an applications system in a 
computer system; an applications system across a plurality of networked 
computer systems; a backup and recovery system in a computer system; and, 
a backup and recovery system across a plurality of networked computerized 
systems. 

• Permitting creation and use of one-time pad cryptography between and/or 
among a plurality of storage devices and/or computer systems. 

Whereas particular embodiments of the invention have been described herein 
for the purpose of illustrating the invention and not for the purpose of limiting the 
same, it can be appreciated by those of ordinary skill in the art that numerous 
variations of the details, materials and arrangement of parts may be made within the 
principle and scope of the invention without departing from the invention as described 
in the appended claims. 
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